A Week in Security (Jun 29 – Jul 5)

Poste Italiane Phishing Mails In Circulation(Fraud/Scam Alert)Spam containing HTML files that are actually phishing pages are a dime a dozen. The particular attachment profiled in this blog, however, has its code fully encrypted, making it more challenging for security researchers to study and figure out.

Misleading eBook Advertisements Install PUPs(Fraud/Scam Alert) Fraudsters are now in the business of fake ebook downloads, and most users are not aware of this. Security researcher Joshua Cannell recounted what happened in his encounter with a fake ebook download domain. It involved potentially nasty files and broken links.

Microsoft Darkens 4M Sites in Malware Fight. What was supposed to be a switching off of 2,000 selected malicious sites by Microsoft became an ISP-wide blackout, all in the name of security. Even legitimate domains using services of no-ip.com were affected by this supposed take-down. (Source: Kebs on Security)

I was just unfortunate enough to download your 2.0 version. The first time I ran it, I got 116 objects. The second time, after repairing, I am up to 126 and rising, including all the previous ones you “removed.” If you have the old version still available, please let me know, this version seems to make the malware multiply!

Adam Kujawa

orbfish, did you restart your computer after the scan? The quarantine list might also just be adding onto the pre-existing list of quarantined items so that extra 10 might be from something else.